Move force_ssl check to production config (#2165)

The force_ssl method from controllers does not add all of the options that the sitewide configuration in a config block does. For example, HSTS enforcement is not added by the controller method, but is added by this style.
author: Matt Jankowski <mjankowski@thoughtbot.com> 2017-04-22 22:22:22 -0400
committer: Eugen <eugen@zeonfederated.com> 2017-04-23 04:22:22 +0200
commit: ee82d8a8761f0bedc97f5e79565b7c5142c1b8bd (patch)
tree: 464a5df6d532e09a4439d059c34c3bb11e4981ce /config/environments
parent: 1646ca75f02f21e058d11885edd4ae9b5d7ff8cd (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/config/environments/production.rb b/config/environments/production.rb
index eff4c293f..cf4b3e7f9 100644
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@@ -108,6 +108,7 @@ Rails.application.configure do
 
   config.action_mailer.delivery_method = ENV.fetch('SMTP_DELIVERY_METHOD', 'smtp').to_sym
 
+  config.force_ssl = (ENV['LOCAL_HTTPS'] == 'true')
 
   config.react.variant = :production
author	Matt Jankowski <mjankowski@thoughtbot.com>	2017-04-22 22:22:22 -0400
committer	Eugen <eugen@zeonfederated.com>	2017-04-23 04:22:22 +0200
commit	ee82d8a8761f0bedc97f5e79565b7c5142c1b8bd (patch)
tree	464a5df6d532e09a4439d059c34c3bb11e4981ce /config/environments
parent	1646ca75f02f21e058d11885edd4ae9b5d7ff8cd (diff)